FEDORA-FLATPAK-2022-d11152bd99
Packages in this update:
firefox-stable-3620220823164227.1
Update description:
Firefox 104.0 release. For details, see https://www.mozilla.org/en-US/firefox/104.0/releasenotes/
firefox-stable-3620220823164227.1
Firefox 104.0 release. For details, see https://www.mozilla.org/en-US/firefox/104.0/releasenotes/
The guide includes input from firms with experience in joint ventures, including major infrastructure contracts such as HS2 and Crossrail
This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
This vulnerability allows remote attackers to bypass authentication on affected installations of Delta Industrial Automation DIALink. Authentication is not required to exploit this vulnerability.
Multiple vulnerabilities have been discovered in Mozilla Firefox and Mozilla Thunderbird, the most severe of which could allow for arbitrary code execution.
Mozilla Firefox is a web browser used to access the Internet.
Mozilla Firefox ESR is a version of the web browser intended to be deployed in large organizations.
Mozilla Thunderbird is a free and open-source cross-platform email client, personal information manager, news client, RSS and chat client
Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution in the context of the logged on user. Depending on the privileges associated with the user an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.
Multiple vulnerabilities have been discovered in Mozilla Firefox and Mozilla Thunderbird, the most severe of which could allow for arbitrary code execution.
Mozilla Firefox is a web browser used to access the Internet.
Mozilla Firefox ESR is a version of the web browser intended to be deployed in large organizations.
Mozilla Thunderbird is a free and open-source cross-platform email client, personal information manager, news client, RSS and chat client
Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution in the context of the logged on user. Depending on the privileges associated with the user an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.
Multiple security issues have been found in the Mozilla Firefox
web browser, which could potentially result in the execution
of arbitrary code or spoofing.
Nick Wellnhofer discovered that the xsltApplyTemplates function in
libxslt, an XSLT processing runtime library, is prone to a
use-after-free flaw, resulting in a denial of service, or potentially
the execution of arbitrary code if a specially crafted file is
processed.
A vulnerability was discovered in open-vm-tools, an open source
implementation of VMware Tools, allowing an unprivileged local guest
user to escalate their privileges as root user in the virtual machine.
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.